Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
File: 001KO3R_ynAQOxfz29xQRcrOMt8.mft (raw, json)
Hash identifier: ghBOsnUZacFyJhkyTAJZBRoV95DX7hJBYHWGIC4Dvyk=
Subject key identifier: 8C:1C:D5:C1:FF:23:24:0E:39:E2:4C:C9:C4:9C:02:18:1C:9B:E0:0F
Authority key identifier: D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
Certificate issuer: /CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Certificate serial: 0198D5F1CC70E439552B4D37192500450B5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 08:00:50 +0000
Manifest this update: Sat 23 Aug 2025 08:00:50 +0000
Manifest next update: Sun 24 Aug 2025 08:00:50 +0000
Files and hashes: 1: 001KO3R_ynAQOxfz29xQRcrOMt8.crl (hash: 1/qWsG24YYKS/09OsP1cqSAS1sxY92VSjSt2NeA9dJc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:cc:70:e4:39:55:2b:4d:37:19:25:00:45:0b:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Validity
Not Before: Aug 23 08:00:50 2025 GMT
Not After : Aug 24 08:00:50 2025 GMT
Subject: CN=8c1cd5c1ff23240e39e24cc9c49c02181c9be00f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:68:0f:4d:fe:e2:ce:fa:ed:59:f4:5c:79:88:
c9:21:05:a1:dd:17:00:56:54:42:1e:de:96:bd:01:
28:ba:09:8d:03:b9:64:fe:50:68:d7:dc:c9:fa:e0:
65:5f:c2:c2:52:ac:57:54:b7:84:0b:b4:f4:c9:f1:
2b:d2:6e:95:46:0e:a4:0b:cc:cf:d6:c7:39:95:e6:
97:e6:a8:51:17:9f:03:27:d2:0b:30:d5:00:7d:15:
41:b8:fd:fc:90:2a:13:8e:b6:31:34:de:cd:e9:53:
ca:6e:54:c7:ef:9c:c7:55:03:00:d2:c0:cc:76:70:
89:ed:ed:0b:2f:64:f8:86:8d:97:ea:0e:84:7b:54:
a4:e2:80:b6:0b:f5:24:17:6f:64:a5:2a:b5:ab:59:
ff:78:0f:97:c1:6e:46:cf:18:cf:d7:45:e1:7a:12:
c9:da:bd:5a:3e:30:8d:6b:f4:5f:9c:cf:10:bf:d9:
0a:36:d3:53:c8:f6:d6:9b:66:bf:c9:59:60:50:7d:
b8:32:db:a0:01:d2:cf:36:e3:2b:eb:76:af:34:d3:
9f:6e:07:5a:e3:63:09:d3:03:b3:87:8e:99:02:66:
52:29:4d:2c:bf:32:f8:fb:18:7d:19:27:07:4c:dc:
24:68:b7:5f:d5:30:ef:7c:47:90:82:cc:30:20:0a:
82:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:1C:D5:C1:FF:23:24:0E:39:E2:4C:C9:C4:9C:02:18:1C:9B:E0:0F
X509v3 Authority Key Identifier:
keyid:D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:33:3e:1c:e4:cb:a0:19:1c:69:5f:28:a8:1f:2b:2f:f0:1c:
d0:d5:f1:32:87:93:3f:79:0d:8c:f9:4a:d0:ba:a7:63:34:e1:
b1:78:4a:e0:8d:97:ef:26:a9:a2:46:56:1d:e9:59:5b:ac:f8:
4c:ce:53:04:56:3b:25:c4:c7:a4:cb:4d:80:66:7f:a6:a9:80:
e4:3d:65:4a:4f:29:f8:fc:d8:3e:06:a5:c7:d6:98:31:4d:13:
d3:7b:19:89:90:07:8a:a8:29:ed:4d:5d:38:55:1a:e3:23:33:
37:26:63:6f:d2:82:c2:da:29:38:d1:2e:83:4e:85:4f:23:a6:
1d:05:42:f9:26:cb:c9:86:84:eb:36:3b:4d:92:9a:8b:4e:11:
81:e8:b6:05:0a:b1:fa:3e:e4:60:8f:ea:36:6c:c1:fd:61:93:
12:55:34:fd:88:f8:3e:6d:79:0a:c0:17:0c:3b:ba:73:b6:af:
ba:c1:09:76:68:d3:81:16:9d:c6:f4:ec:36:3a:6f:df:82:6e:
a2:75:50:97:8f:e5:9c:2c:72:82:3d:4e:a3:83:ba:26:09:ea:
8a:fc:16:f4:bd:d5:bc:05:2d:f1:a0:34:af:84:35:b6:50:e2:
e5:d6:8b:c0:42:32:dc:d4:73:72:e3:17:48:18:75:71:91:be:
c8:06:65:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:44:50 2025 by rpki-client